Home > mailing lists

Re: Password requirement in windows installer - Mailing list pgsql-hackers

From	Decibel!
Subject	Re: Password requirement in windows installer
Date	August 31, 2007 17:30:16
Msg-id	20070831173002.GA38801@decibel.org Whole thread Raw
In response to	Re: Password requirement in windows installer (Andrew Dunstan <andrew@dunslane.net>)
Responses	Re: Password requirement in windows installer (Andrew Sullivan <ajs@crankycanuck.ca>)
List	pgsql-hackers

Tree view

On Fri, Aug 31, 2007 at 12:37:16PM -0400, Andrew Dunstan wrote:
>
>
> Decibel! wrote:
> >Is there something insecure about using ident sameuser for localhost
> >authentication on Windows?
> >
>
> FWIW, I never advise people to use ident auth for postgres except on
> local (a.k.a. Unix domain socket) connections, which don't exist on Windows.

Is it easy to spoof where an incoming connection request is coming from?
Is there something else that makes ident on 127.0.0.1/32 insecure?
--
Decibel!, aka Jim Nasby                        decibel@decibel.org
EnterpriseDB      http://enterprisedb.com      512.569.9461 (cell)

pgsql-hackers by date:

From: Decibel!
Date: 31 August 2007, 17:17:38
Subject: Re: enum types and binary queries

From: Andrew Dunstan
Date: 31 August 2007, 17:41:55
Subject: Re: enum types and binary queries

Re: Password requirement in windows installer - Mailing list pgsql-hackers

Previous

Next